Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
File: qlTEdj6gGMPccCA9BO_nH9SxsGY.mft (raw, json)
Hash identifier: EY0piK0NvDq2SSWW6pI+AEFADg5tj6DwO0h5yCMCAEs=
Subject key identifier: 24:D1:92:EE:43:2B:44:C3:BB:A5:A4:D8:86:27:05:0E:F6:08:E4:18
Authority key identifier: AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66
Certificate issuer: /CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066
Certificate serial: 019D31BE2BF190664E55AAA0117220CA3F5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
Manifest number: 156B
Signing time: Sat 28 Mar 2026 00:00:39 +0000
Manifest this update: Sat 28 Mar 2026 00:00:39 +0000
Manifest next update: Sun 29 Mar 2026 00:00:39 +0000
Files and hashes: 1: bZqOUIU_1IqMOnS3XXUrS60GrpM.roa (hash: LFmDzSYfJ7mk0ygK5bmtim3i/wVzAaEknmN17hltFu0=)
2: qlTEdj6gGMPccCA9BO_nH9SxsGY.crl (hash: eKP8l1MUtJZ8eX7XdwvjR7Pw69JvN2MnAwl3Ed6ZeHU=)
3: qxRVneBb_uUd_NsM3Vb645rM-7A.roa (hash: G6Y/r+hYk+mMByjpNJdV1U1ctvTf0yt3EQ8Sq5betwQ=)
4: sPMgSkKer_29geM5-1T1-keLLGw.roa (hash: 4QbBQJWJYkQw7XP4lLebE7Woxf8+43i+sSWLrzO/9j0=)
5: tP-zd4fvUG5Ghj_hj4jy-iA0H5M.roa (hash: dncyiHvUZh8Otlmg0Vs+Wpy7Azdi/J7dNn/2EsRGlWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:31:be:2b:f1:90:66:4e:55:aa:a0:11:72:20:ca:3f:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066
Validity
Not Before: Mar 28 00:00:39 2026 GMT
Not After : Mar 29 00:00:39 2026 GMT
Subject: CN=24d192ee432b44c3bba5a4d88627050ef608e418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:39:71:72:bb:33:f0:0d:ae:14:2a:aa:a7:7b:
67:02:2e:ac:cf:80:42:e9:c7:81:d2:47:9f:02:97:
c2:66:a4:bd:d1:0a:9b:82:12:32:8b:8f:bb:3e:d2:
a1:66:95:b8:c7:30:ed:50:c3:fa:7a:f0:ca:b5:52:
70:ed:7d:dd:2c:31:34:c3:ac:05:2c:0c:50:62:14:
63:7f:d9:97:8a:3f:f8:09:7b:e9:13:0b:59:f5:f1:
c1:77:fe:df:d3:6b:c7:87:8b:80:6c:8b:08:de:35:
9c:2e:72:a2:9f:e8:3d:c0:d0:46:5c:ab:b2:1d:a1:
d4:05:83:f6:4a:55:5c:db:d5:94:23:5e:90:55:d1:
a7:f9:d9:e1:22:98:42:c4:5e:ef:23:55:34:0b:fc:
dc:e4:55:4c:cc:82:6c:2f:83:e9:5c:fc:ca:b7:e8:
a1:08:f1:fa:0e:92:15:e8:43:2e:7a:f6:79:48:4d:
93:05:f5:a7:5d:ac:a8:7e:2f:48:04:44:e4:cb:1d:
cf:29:a9:2d:6c:7c:48:fb:58:84:2b:bf:ac:6d:9b:
36:51:e0:4d:6f:23:2c:0b:be:55:b5:e1:ea:3f:d8:
27:9e:0f:c2:74:ee:93:ab:af:4f:05:0b:cc:56:cf:
b9:4a:6b:bf:ed:6f:bb:95:58:b2:50:e9:b1:93:ec:
22:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:D1:92:EE:43:2B:44:C3:BB:A5:A4:D8:86:27:05:0E:F6:08:E4:18
X509v3 Authority Key Identifier:
keyid:AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:5a:f5:20:67:8e:52:d2:17:40:ed:92:56:59:f7:48:6c:e0:
15:42:46:be:e2:d5:c8:aa:77:78:bf:25:93:cb:b2:7c:94:ca:
df:72:76:21:db:a0:02:c5:35:39:51:27:66:ce:b9:d3:0d:3f:
c0:f5:ea:c6:65:fe:72:d9:f7:d6:9d:ad:e6:41:00:a7:6a:cf:
66:8a:56:a0:63:d7:38:4e:5f:d8:c7:a4:cc:a2:77:43:0c:16:
49:7d:3b:bc:4b:59:99:14:c6:70:74:28:d4:45:1a:3d:1e:7d:
04:c0:bb:5b:bb:06:b3:30:ed:ea:5d:b8:fb:75:aa:b0:7c:b5:
ff:80:e0:3e:37:a7:84:69:9a:77:bd:6a:38:e4:84:fc:41:cc:
5b:b5:8a:34:e6:93:29:14:b6:a9:22:3f:42:18:72:9d:1a:74:
3d:ae:8e:7c:7f:64:a6:76:e2:6a:98:ee:a1:30:a1:13:a4:fb:
4e:7c:2f:ba:54:19:f1:58:2b:3b:52:b7:70:23:7f:b6:30:99:
89:81:98:38:0a:3b:30:e0:c4:f8:4c:ae:f9:3d:7c:92:5b:62:
0a:d9:1c:69:6e:bd:06:cf:94:55:73:61:af:1d:00:7d:e1:ea:
6b:71:2b:cd:08:bc:a1:a2:cb:75:c4:fd:a3:f9:a8:fb:aa:95:
8f:ba:f7:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0xvivxkGZOVaqgEXIgyj9fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhNTRjNDc2M2VhMDE4YzNkYzcwMjAzZDA0ZWZlNzFmZDRi
MWIwNjYwHhcNMjYwMzI4MDAwMDM5WhcNMjYwMzI5MDAwMDM5WjAzMTEwLwYDVQQD
EygyNGQxOTJlZTQzMmI0NGMzYmJhNWE0ZDg4NjI3MDUwZWY2MDhlNDE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4zlxcrsz8A2uFCqqp3tnAi6sz4BC
6ceB0kefApfCZqS90QqbghIyi4+7PtKhZpW4xzDtUMP6evDKtVJw7X3dLDE0w6wF
LAxQYhRjf9mXij/4CXvpEwtZ9fHBd/7f02vHh4uAbIsI3jWcLnKin+g9wNBGXKuy
HaHUBYP2SlVc29WUI16QVdGn+dnhIphCxF7vI1U0C/zc5FVMzIJsL4PpXPzKt+ih
CPH6DpIV6EMuevZ5SE2TBfWnXayofi9IBETkyx3PKaktbHxI+1iEK7+sbZs2UeBN
byMsC75VteHqP9gnng/CdO6Tq69PBQvMVs+5Smu/7W+7lViyUOmxk+wipQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCTRku5DK0TDu6Wk2IYnBQ72COQYMB8GA1UdIwQY
MBaAFKpUxHY+oBjD3HAgPQTv5x/UsbBmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWxURWRqNmdHTVBjY0NBOUJPX25IOVN4c0dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9hMjFjOWUtODdmMS00OTgzLTgzOTQt
ZGUzNzY3M2M0MDljLzEvcWxURWRqNmdHTVBjY0NBOUJPX25IOVN4c0dZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9hMjFjOWUtODdmMS00OTgzLTgzOTQtZGUzNzY3M2M0MDlj
LzEvcWxURWRqNmdHTVBjY0NBOUJPX25IOVN4c0dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB1r1IGeO
UtIXQO2SVln3SGzgFUJGvuLVyKp3eL8lk8uyfJTK33J2IdugAsU1OVEnZs650w0/
wPXqxmX+ctn31p2t5kEAp2rPZopWoGPXOE5f2MekzKJ3QwwWSX07vEtZmRTGcHQo
1EUaPR59BMC7W7sGszDt6l24+3WqsHy1/4DgPjenhGmad71qOOSE/EHMW7WKNOaT
KRS2qSI/QhhynRp0Pa6OfH9kpnbiapjuoTChE6T7TnwvulQZ8VgrO1K3cCN/tjCZ
iYGYOAo7MODE+Eyu+T18kltiCtkcaW69Bs+UVXNhrx0AfeHqa3ErzQi8oaLLdcT9
o/mo+6qVj7r3uw==
-----END CERTIFICATE-----
Generated at Sat Mar 28 10:40:59 2026 by rpki-client